Detik News- Exploit DB
- [webapps] Life Insurance Management System 1.0 - 'client_id' SQL Injection January 18, 2021Life Insurance Management System 1.0 - 'client_id' SQL Injection
- [webapps] Cisco UCS Manager 2.2(1d) - Remote Command Execution January 18, 2021Cisco UCS Manager 2.2(1d) - Remote Command Execution
- [webapps] Xwiki CMS 12.10.2 - Cross Site Scripting (XSS) January 18, 2021Xwiki CMS 12.10.2 - Cross Site Scripting (XSS)
- [webapps] Inteno IOPSYS 3.16.4 - root filesystem access via sambashare (Authenticated) January 18, 2021Inteno IOPSYS 3.16.4 - root filesystem access via sambashare (Authenticated)
- [webapps] Life Insurance Management System 1.0 - File Upload RCE (Authenticated) January 18, 2021Life Insurance Management System 1.0 - File Upload RCE (Authenticated)
- [webapps] WordPress Plugin Easy Contact Form 1.1.7 - 'Name' Stored Cross-Site Scripting (XSS) January 15, 2021WordPress Plugin Easy Contact Form 1.1.7 - 'Name' Stored Cross-Site Scripting (XSS)
- [webapps] Online Hotel Reservation System 1.0 - 'description' Stored Cross-site Scripting January 15, 2021Online Hotel Reservation System 1.0 - 'description' Stored Cross-site Scripting
- [webapps] Online Hotel Reservation System 1.0 - 'id' Time-based SQL Injection January 15, 2021Online Hotel Reservation System 1.0 - 'id' Time-based SQL Injection
- [webapps] Online Hotel Reservation System 1.0 - Cross-site request forgery (CSRF) January 15, 2021Online Hotel Reservation System 1.0 - Cross-site request forgery (CSRF)
- [webapps] EyesOfNetwork 5.3 - File Upload Remote Code Execution January 15, 2021EyesOfNetwork 5.3 - File Upload Remote Code Execution
- [webapps] Alumni Management System 1.0 - "Last Name field in Registration page" Stored XSS January 15, 2021Alumni Management System 1.0 - "Last Name field in Registration page" Stored XSS
- [webapps] E-Learning System 1.0 - Authentication Bypass & RCE POC January 15, 2021E-Learning System 1.0 - Authentication Bypass & RCE POC
- [webapps] Netsia SEBA+ 0.16.1 - Authentication Bypass and Add Root User (Metasploit) January 15, 2021Netsia SEBA+ 0.16.1 - Authentication Bypass and Add Root User (Metasploit)
- [webapps] PHP-Fusion CMS 9.03.90 - Cross-Site Request Forgery (Delete admin shoutbox message) January 15, 2021PHP-Fusion CMS 9.03.90 - Cross-Site Request Forgery (Delete admin shoutbox message)
- [webapps] Online Hotel Reservation System 1.0 - 'person' time-based SQL Injection January 15, 2021Online Hotel Reservation System 1.0 - 'person' time-based SQL Injection
- [webapps] Life Insurance Management System 1.0 - 'client_id' SQL Injection January 18, 2021
Category Archives: Security
Menonaktifkan Open DNS Server BIND
Beberapa waktu lalu, tim abuse dari salah satu penyedia VPS (Virtual Private Server) yang saya gunakan meneruskan email komplain ke saya terkait dengan digunakannya server VPS saya sebagai reflektor serangan DDoS ke server di Eropa. Setelah saya cek, ternyata ada … Continue reading
Posted in IT, Security, Tips and Tricks
Leave a comment
[Update] WordPress 0day XSS Vulnerability
Buat teman-teman yang mempunyai website/blog menggunakan wordpress, diharapkan segera melakukan update ke wordpress terbaru 4.2.1 berhubung adanya vulnerability 0day XSS dimana penyerang bisa membuat komentar di post/page manapun dan menyisipkan script XSS yang bisa mendapatkan/eksekusi perintah di server. Referensi bisa … Continue reading
Cpanel Down
Siang ini saya coba mengakses cpanel.net dan sepertinya database sedang mengalami masalah. Bisa dibayangkan kalau corporate sebesar Cpanel masih mengalami masalah classic seperti ini. Bagaimana kesiapan Anda dalam hal menangani bisnis Anda yang berhubungan dengan koneksi ke pusat data mengalami … Continue reading
Posted in IT, Security
Leave a comment
Hati-hati pencurian password email
yahoo scam, stolen password yahoo Continue reading
Posted in IT, Security, Tips and Tricks
Leave a comment
Forecast vulnerability Pligg CMS
Saya cukup kaget melihat ada forecast vulnerability di situs securityfocus.com. Bisa dilihat di screenshoot disamping atau coba klik http://www.securityfocus.com/bid/51273. Aneh tapi cukup nyata.
Posted in IT, Security
Leave a comment